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Server \. 
f Authenticates j 
\Security Devicey 



Get serial number 
from secunty ' 
device. 



Yes 
1 



Get HKr K</ 
for sefial number. 



Get time and date 
from clock/ 
calendar. ' 



Compute i 
challenge. / \^ Y \Q 



%0l 




No —^Terminate session^ 



%0% 



Compute expected 
response. 



Send challenge to 
secunty device 




'Security Device 
Responds to 
Authentication 
Challenge 



722 



Get uj<rr k^K 
from security logic. 



Compute response 
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Send <X>f5^ 
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Done 
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Server Update 
f of Security Device 1 

Current and 
\Expiration Dates/ 



Get expiration date 
from user 
database. 



Get current date 
from clock/ 
calendar. 



Encrypt expiration 
date and current 
date. , 



Unlock security 
A ztf<C filer*'/ 

F4-f<0 



Yes 



Send encrypted 

dates to the 
security device 

IF* fey 



Lock security 
device memory. 



Done 
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'Server UniocksN 
Security Device J 
Memory 



Get serial number 
from the security 
device. 



£57 



Get r\cr^\or/ 
key from the user 
database. 



Get current time 
and date from the 
clock/calendar. • 



Get the current 
cryptogram from 
the security 
device. 



Compute the 
unlock message 
and response 
values. 



Send the memory 
unlock message to 
the security „. 
device. 
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Security device^ 
updates the 
current and 
expiration dates 
v received from the j 
server. 



Decrypt current 
and expiration < 
date received from 
the server 



Store dates in non- 
volatile memory 



Done 



Server locks \ 
security device J 
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Send memory lock 
command to „ 
security device 







Done 
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Application 
Updates Current 
Date in Security 
Device 




Get date and time 
from clock/ 
calendar * 



Send date and 
time to security 
device. 



Done 
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Yes 







Record expiration. 
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Store date and 
time in non-volatile 
memory. 



Done 
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Server encrypts 
asset 



Get time and date 
from clock/ 
calendar. 



Generate 
encryption key. 



Encrypt asset* 



Store encrypted 
)/\ database. 



Done 
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Server delivers 
asset. 



Get asse^ 4$}t\ 
key and indication 
of owned or rented 
status from asset 
database. 



Get user Key 
for security devide 
from user databse. 




Encrypt asset key 
and rental flag 
using user 
key. 




Send encrypted 
key and flag to 



Send encrypted 
asset +o 



Done 
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Application 
' extracts asset key 1 
from security 
device. 



Send er 
asset k 
rental 
security 


crypted 
ey and . 
Rag ro 
device. 
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Get response from 
security device. 



Extract asset key 

from security 
device response. 




Yes- 



Notify user that 
asset has expired. 
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Done 
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Application 
decrypts asset. 



Initialize 
decryption 
algorithm with 
asset key received 
from security 
device. 



Decrypt memory 
copy of- 



Done 



I Security device \ 
I extracts asset key J 




Receive encrypted 
asset key and 
f«cM\ fiag 



Get user 

from secure 
memory. 



Decrypt asset key 
and rorfil -TM? 
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asset key- 



Yes 



Return indication 
of subscription 
expired. 
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Done 
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Process Client 
Form 



1 r 

security device. 


1/ 


Start secure 
sockets layer 
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Yes 



Display notification 
from server. 



Stop secure 
sockets layer 
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Done 



Server 
Registration 



I 



Start secure 
sockets layer. 



I 



Send blank 
client. 



1 



Wait for 
submission 




4- 



Notify client of 
incorrect form 
contents. 



IX?0 



Yes 



Notify client of 
charge request 
rejected. 



Save registration 
information in user 
database. 



i 



Stop secure 
sockets layer. 



Done 
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Client Purchase 



■ — r 




/ 

Start secure 
sockets layer 


► 



Display 
Purchase 
selection form. 



I 



Process user 
inputs. 



Stop secure 
sockets layer. 
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Done 
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Yes 




Yes 



Submit purchase 
request to server. 




Display notification 
from server. 



1 



Record purchase 
in security device 



Yes 




Download asset. 



Notify purchase 
completed 
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Stop secure 
sockets layer. 
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Done 
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User web server 
online purchase. 



I 



Start secure 
sockets layer. 



I 



Send purchase 
selection fofn H 
client. 









Issue charge 




request to trusted 




authority. 




Yes 



Log purchase to 
user database. 



Stop secure 
sockets layer. 





Done 



Add purchase 
amount to account 
balance. 
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Download asset. 



I 



No 



Stop secure 
sockets layer. 
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Done 
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A-W Ajs# to list 
with usage count 
of zero. 



Add one to p$ifit} 
usage count. 



I 



Store date with 
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Done 




Upload Usage 
Counts 



I 



Request usage 
counts. 
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No 



Look up title in 
asset databse. 



I 



Add count from list 
entry to usage 
count for asset. 



Hit 




Get next entry 
from list. 



/ User web server \ 
V cycled billing. J 




I 



Get first 
subscriber 
account from user 
database. 
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No 



No 



Yes 



Issue charge 
request to trusted 
authority. 
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Set user status to 
was subscribed. 



Yes 



Set account 
balance to zero. 



I 



Set next due date. 



i 



Update user 
database. 



Yesi 




Get next _ 




subscriber 




account from tne 




user database. 





( Server registration^ 
I update. J 



I 



Start secure 
sockets layer. 



Retrieve 
registration 
information from 
user database. 




Notify client of 
incorrect form 
contents. 



Yes 



Save new 
registration data in 
user database. 
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Stop secure 
sockets layer. 
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Done 




Server 
cancellation. 



I 



Start secure 
sockets layer. 



I 



m 



Send account 
cancellation form 
to client. 



Roo_ 




Yes 



No 



Yes 



Issue charge 
request to trusted 
authority. 




Send client reject 
notification. 
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Yes 



Deactivate 
account in user 
database. 



I 



Stop secure 
sockets layer. 



I 



Done 
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(Customer \ 
service web \ 
server transfer I 
of ownership. / 



I 



Start secure 
sockets layer. 



I 



Send transfer of 
ownership form to 
client. 



I 



Wait for 
submission. 



Yes 



Update user 
database to reflect 
transfer of 
ownership. 



I 



Stop secure 
sockets layer. 
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Done 
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(Customer \ 
service web \ 
server account J 
adjustment. J 




I 



Start secure 
sockets layer. 
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Send account 
adjustment form to 
client. 



Wait for form 
submission 





Issue credit or 
charge request to 
trusted authority. 



Yes 
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Send notification 
of rejection. 



Yes 



Update account 
balance. 



I 



I1IH 



Notify submission 
accepted. 



A 



Stop secure 
sockets layer. 
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Done 



